Manual Business Logic and Workflow Testing
Most companies refer to "manual testing" as part of their
process, but they are only talking about removing false
positives. Applications today contain a significant amount
of business logic and workflow and these areas cannot be
tested thoroughly through tools.
We go through the complete application and map its
modules, sub-modules, pages, parameters, data flow,
Based on this information, we prepare test-cases of all
possible abuse scenarios that could take place for each
This abuse scenarios are tested, reviewed and executed
based on which a TRUE or FALSE status is applied to
This process lets us identify significant critical
vulnerabilities that are impossible to find
through automated mechanisms.